Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/LGKmQCZNRnUUOkC6RfmsvZYqyw8.roa
File: LGKmQCZNRnUUOkC6RfmsvZYqyw8.roa (raw, json)
Hash identifier: /jZMbGZmD8ItrYMlSsxOdGQ0MRgLgS1vH0L8XEssQbo=
Subject key identifier: 2C:62:A6:40:26:4D:46:75:14:3A:40:BA:45:F9:AC:BD:96:2A:CB:0F
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018410A3A96E452ED05B676F2A01FE2ACC4F
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/LGKmQCZNRnUUOkC6RfmsvZYqyw8.roa
Signing time: Tue 25 Oct 2022 19:34:31 +0000
ROA not before: Tue 25 Oct 2022 19:34:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 188.191.98.0/24 maxlen: 24
188.191.103.0/24 maxlen: 24
188.191.101.0/24 maxlen: 24
188.191.110.0/24 maxlen: 24
188.191.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:a3:a9:6e:45:2e:d0:5b:67:6f:2a:01:fe:2a:cc:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Oct 25 19:34:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c62a640264d4675143a40ba45f9acbd962acb0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:82:4d:25:20:05:49:75:39:20:76:d9:a4:
0d:f7:7f:01:55:36:63:10:37:e1:c2:62:f5:4a:d2:
1a:4d:15:43:b5:00:e2:7e:c4:fe:a0:a8:01:6c:7c:
8c:e1:16:0f:24:40:d4:2b:e9:c8:23:e2:b4:b8:ca:
7e:69:14:2f:47:7f:5a:fb:ff:65:32:86:da:3e:ab:
58:02:f1:10:2a:db:43:d7:06:c0:43:38:59:12:97:
e0:0f:f1:83:5a:96:cf:2a:31:77:ed:0c:81:6e:a2:
3b:6e:29:af:ec:ec:33:a8:e1:b7:9a:e4:73:54:1f:
3f:9f:b7:53:50:44:45:71:6f:88:a9:af:a5:59:bc:
6a:b5:bc:b3:03:0e:99:c3:80:9d:76:de:f9:b1:68:
44:95:60:67:53:92:cc:2b:5e:0b:ca:04:58:dc:23:
d9:d5:d3:21:57:3f:b6:cf:8e:bc:bd:50:a4:29:37:
cf:dd:f5:6a:bb:5d:98:cb:82:ed:3e:11:5e:ca:bd:
f2:12:3e:52:8d:d0:f4:2f:40:b6:b6:8a:f7:97:dc:
36:f4:b5:81:e2:21:10:90:44:a2:03:39:53:de:90:
4a:de:ba:9c:e3:09:c6:f1:6a:38:bd:33:0d:97:74:
bb:b7:44:28:93:23:0d:ce:53:62:71:16:ad:a7:d8:
c0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:62:A6:40:26:4D:46:75:14:3A:40:BA:45:F9:AC:BD:96:2A:CB:0F
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/LGKmQCZNRnUUOkC6RfmsvZYqyw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.98.0/24
188.191.101.0/24
188.191.103.0/24
188.191.109.0-188.191.110.255
Signature Algorithm: sha256WithRSAEncryption
78:07:5c:0d:e9:70:b7:8d:36:02:2a:15:77:9f:f3:45:b3:f9:
fc:02:a0:56:c8:17:96:f5:da:a6:5a:5e:4a:b3:fa:82:94:70:
e8:01:7e:a9:34:07:5b:02:a1:f5:0d:ea:78:f8:29:ad:ab:15:
58:dd:1d:ef:c4:99:e3:b2:bc:38:0e:73:4a:42:eb:9e:df:4c:
54:ee:21:71:6e:ee:7e:01:71:02:34:d9:34:ff:90:62:a8:90:
0f:dc:a1:10:72:d2:dc:54:35:00:11:c7:a3:67:c0:e4:24:e5:
6b:96:2e:53:3f:ec:df:a1:b9:74:fb:ca:1b:44:24:9c:d4:14:
cf:25:f6:12:90:38:1a:32:3a:b6:9e:08:e1:13:f8:7b:2e:3e:
04:e8:2b:2d:e2:2c:37:b1:ac:13:46:03:39:98:8f:5f:58:b5:
15:88:07:10:0e:69:3e:0f:28:48:6b:93:27:9f:e8:f8:06:26:
28:18:8d:45:15:ac:2c:58:18:3c:ba:32:8a:93:90:85:80:75:
2e:ce:b5:b4:04:dc:bb:18:3a:19:8f:dd:b2:da:3c:52:8e:10:
29:9d:7e:5f:f3:e2:31:d0:12:52:21:56:d5:df:89:23:f4:00:
ff:08:58:31:00:68:d9:7f:94:15:a1:5c:e8:c5:de:4f:88:67:
46:42:aa:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org